kunsi/bundlewrap
1
0
Fork 0
Code Issues 2 Pull requests 1 Releases Activity
1181 commits 7 branches 0 tags 22 MiB
Commit graph

72 commits

Author SHA1 Message Date
Franzi b5ab21549d
bundles/nginx: rename 'proxy' metadata to 'locations', support more generic options, move extras files to metadata
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-07-04 19:28:03 +02:00
Franzi e091adaa64
bundles/nginx: increase buffer sizes
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-07-02 18:21:57 +02:00
Franzi 68e79b4883
bundles/nginx: only add well-known alias for vhosts which use letsencrypt 2021-07-01 16:04:46 +02:00
Franzi 8d331b0086
bundles/nginx: always use first of month for security.txt expiry
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-06-19 08:49:10 +02:00
Franzi db83b1614b
bundles/nginx: add anonymous timing logging for http requests
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-06-05 15:53:02 +02:00
Franzi 1fbc08f74b
bundles/nginx: add a default security.txt to all vhosts
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-06-03 18:57:25 +02:00
Franzi d569b00960
modify nodes and bundles for new nftables syntax 2021-06-03 13:59:36 +02:00
Franzi cf3c45fdd5
bundles/nginx: prepare for arch linux 2021-06-01 16:52:03 +02:00
Franzi 3468b719ed
bundles/nginx: default vhost always supports letsencrypt 2021-05-24 19:19:10 +02:00
Franzi 22c98a4206
nodes/home.paperless: introduce
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-05-23 17:41:19 +02:00
Franzi 8fd83241ca
bundles: ensure apt/repos/*/items is a set 2021-04-30 12:49:59 +02:00
Franzi 44d42de81c
bundles/nginx: only redirect to ssl for sites which actually have ssl enabled
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-04-25 09:20:16 +02:00
Franzi d98a1adfd9
bundles/ssl: support using a preexisting ssl certificate 2021-04-25 09:09:23 +02:00
Franzi a37d31973a
bundles: add some telegraf plugins 2021-04-24 09:14:25 +02:00
Franzi 6a88040826
bundles/nginx: disable Federated Learning of Cohorts for all hosts
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-04-16 18:36:50 +02:00
Franzi e36a352a42
bundles: fix usage of set() vs {}
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-04-04 10:34:55 +02:00
Franzi b52a196c73
bundles/nginx: add configuration option for client_max_body_size
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-03-30 21:26:25 +02:00
Franzi b943d2d465
rework iptables configuration
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-03-21 10:30:04 +01:00
Franzi b470fddc12
bundles/nginx: add gdpr-compatible log format 2021-02-20 21:11:12 +01:00
Franzi 74d81eb7ba
bundles/nginx: support disabling ssl for each vhost individually
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-02-20 14:25:27 +01:00
Franzi 228786f6aa
bundles/letsencrypt: generate a dummy certificate, if no certificate already exists 2021-02-20 13:52:40 +01:00
Franzi b06532241b
bundles: use metastack syntax for metadata.get()
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-02-18 18:12:25 +01:00
Franzi fbb8840dff
add .editorconfig, format files correctly
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-02-17 10:56:18 +01:00
Franzi 5c1eba0d58
bundles: use a common metadata key for firewall restrictions, use repo.libs.tools.resolve_identifier()
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-02-15 14:16:35 +01:00
Franzi f52df58517
bundles: code style improvements
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-02-12 20:45:41 +01:00
Franzi 2aaf7cf8f8
bundles/nginx: better ssl 2021-01-24 18:44:13 +01:00
Franzi 2d42e5f7dd
update bw to 4.3, add .provides() to metadata reactors
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2021-01-07 18:44:38 +01:00
Franzi 03d3ab6e9d
bundles/{netdata,nginx,unbound}: fix iptables rules (should also create ip6tables rules)
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
Details
2021-01-02 16:19:55 +01:00
Franzi 6045debe9e
bundles/nginx: check ssl certificates
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2020-12-18 13:28:08 +01:00
Franzi 4a57926577
bundles/icinga2: set some notification options for checks 2020-11-22 08:24:44 +01:00
Franzi 5419bf31fb
bundles: fix some icinga checks 2020-11-21 10:30:05 +01:00
Franzi 2d856a1e9a
bundles/nginx: add iptables rules
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2020-11-16 16:43:57 +01:00
Franzi df63f8c732
bundles/nginx: make sure /var/www exists 2020-11-13 13:35:02 +01:00
Franzi 0749fc75c5
bundles: add backup paths 2020-11-13 12:37:26 +01:00
Franzi e5c12f0628
bundles/nginx: create webroot directories after bundle:zfs is done 2020-11-12 22:59:46 +01:00
Franzi 11701a67c8
dns: deploy MTA-STS
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2020-11-11 11:41:06 +01:00
Franzi 8cb997133a
bundles/nginx: add monitoring
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2020-11-10 10:57:04 +01:00
Franzi f8bc4b2ad9
bundles/php: introduce 2020-10-31 13:00:38 +01:00
Franzi e2d8923dee
bundles/nginx: use metadata reactor to determine index files 2020-10-31 10:41:48 +01:00
Franzi 67c5c23194
bundles/nginx: support non-domain vhost names 2020-10-31 10:30:07 +01:00
Franzi 113221a9b2
bundles/nginx: make sure we have dhparam.pem 2020-10-31 10:18:40 +01:00
Franzi 8eeaabf615
bundles/nginx: use http 308 for https redirect
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details 
basically "go away. nothing's here. use https forever."
 2020-10-30 15:24:24 +01:00
Franzi 48cc865892
bundles/nginx: make sure webroot directory exists
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2020-10-18 18:55:00 +02:00
Franzi 366374b4e5
bundles/apt: handle unattended-upgrades ourselves 2020-10-18 15:33:41 +02:00
Franzi 7ea85247e0
bundles/nginx: proxy is a dict now, add some more configuration options
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details
2020-09-22 18:39:38 +02:00
Franzi 151d8e92c3
bundles/nginx: do not set X-Forwarded-Proto if https is disabled, do not use http2 without ssl 2020-09-20 15:46:39 +02:00
Franzi d6799088c4
bundles/nginx: add metadata option to disable https 2020-09-20 14:36:43 +02:00
Franzi ccd4a09183
bundles/apt: allow variables {os} and {os_release} in sources.list entries 2020-08-30 12:06:19 +02:00
Franzi 77051c0a0e
bundles/nginx: clean up unmanaged nginx vhosts 2020-08-30 11:36:48 +02:00
Franzi b24253a64b
bundles/nginx: determine worker processes by cpu count by default 2020-08-30 10:32:29 +02:00